Search

Find a vulnerability

Search criteria

    38 vulnerabilities found for srx1400 by juniper

    VAR-201407-0479

    Vulnerability from variot - Updated: 2025-04-13 23:36

    Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet. Juniper Junos is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. Note: This issue affects on SRX series devices. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Juniper Junos 11.4 prior to 11.4R12, 12.1X44 prior to 12.1X44-D32, 12.1X45 prior to 12.1X45-D25, 12.1X46 prior to 12.1X46-D20, 12.1X47-D10 prior 12.1X47 version

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201407-0479",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4 thats all  11.4r12"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44 thats all  12.1x44-d32"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45 thats all  12.1x45-d25"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46 thats all  12.1x46-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47 thats all  12.1x47-d10"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r9",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r8",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r10-s1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d25",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d32",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r12",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "68545"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "68545"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-3817",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2014-3817",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-71757",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-3817",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-3817",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201407-283",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-71757",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet. Juniper Junos is prone to a remote denial-of-service vulnerability. \nAn attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. \nNote: This issue affects on SRX series devices. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Juniper Junos 11.4 prior to 11.4R12, 12.1X44 prior to 12.1X44-D32, 12.1X45 prior to 12.1X45-D25, 12.1X46 prior to 12.1X46-D20, 12.1X47-D10 prior 12.1X47 version",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "BID",
            "id": "68545"
          },
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-3817",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10635",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "68545",
            "trust": 1.4
          },
          {
            "db": "SECTRACK",
            "id": "1030558",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "59136",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-71757",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "db": "BID",
            "id": "68545"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "id": "VAR-201407-0479",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-13T23:36:35.143000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10635",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.9,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10635"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/68545"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030558"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/59136"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3817"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3817"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10635"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "db": "BID",
            "id": "68545"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "db": "BID",
            "id": "68545"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "date": "2014-07-11T00:00:00",
            "db": "BID",
            "id": "68545"
          },
          {
            "date": "2014-07-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "date": "2014-07-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "date": "2014-07-11T20:55:02.577000",
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-08-01T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71757"
          },
          {
            "date": "2014-07-11T00:00:00",
            "db": "BID",
            "id": "68545"
          },
          {
            "date": "2014-07-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          },
          {
            "date": "2014-07-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-3817"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on series devices  Junos Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003345"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "input validation",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-283"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201507-0045

    Vulnerability from variot - Updated: 2025-04-13 23:29

    The SRX Network Security Daemon (nsd) in Juniper SRX Series services gateways with Junos 12.1X44 before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, and 12.3X48 before 12.3X48-D15 allows remote DNS servers to cause a denial of service (crash) via a crafted DNS response. Supplementary information : CWE Vulnerability type by CWE-19: Data Handling ( Data processing ) Has been identified. Juniper Networks SRX Series services gateways with Junos are Juniper Networks' SRX Series gateway devices running the Junos operating system. The SRX Network Security Daemon (nsd) is one of the network security daemons. Juniper Junos is prone to a remote denial-of-service vulnerability. Successful exploits may allow the attacker to crash the system; denying service to legitimate users. The following versions are affected: Junos 12.1X44 prior to 12.1X44-D50, 12.1X46 prior to 12.1X46-D35, 12.1X47 prior to 12.1X47-D25, 12.3X48 prior to 12.3X48-D15

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201507-0045",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "12.3x48"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47-d25"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.3x48"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d50"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.3x48-d15"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46-d35"
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "networks junos 12.1x44",
            "scope": null,
            "trust": 0.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "networks junos 12.1x46",
            "scope": null,
            "trust": 0.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "networks junos 12.1x47",
            "scope": null,
            "trust": 0.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "networks junos 12.3x48",
            "scope": null,
            "trust": 0.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.3x48-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d45",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d40",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d35.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d35",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d34",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d32",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30.4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20.3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.3x48-d15",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d25",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d35",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d50",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "BID",
            "id": "75722"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "75722"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2015-5363",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2015-5363",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CNVD-2015-04950",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-83324",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-5363",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2015-5363",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2015-04950",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201507-627",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-83324",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The SRX Network Security Daemon (nsd) in Juniper SRX Series services gateways with Junos 12.1X44 before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, and 12.3X48 before 12.3X48-D15 allows remote DNS servers to cause a denial of service (crash) via a crafted DNS response. Supplementary information : CWE Vulnerability type by CWE-19: Data Handling ( Data processing ) Has been identified. Juniper Networks SRX Series services gateways with Junos are Juniper Networks\u0027 SRX Series gateway devices running the Junos operating system. The SRX Network Security Daemon (nsd) is one of the network security daemons. Juniper Junos is prone to a remote denial-of-service  vulnerability. \nSuccessful exploits may allow the attacker to crash the system; denying service to legitimate users. The following versions are affected: Junos 12.1X44 prior to 12.1X44-D50, 12.1X46 prior to 12.1X46-D35, 12.1X47 prior to 12.1X47-D25, 12.3X48 prior to 12.3X48-D15",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "BID",
            "id": "75722"
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          }
        ],
        "trust": 2.52
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-5363",
            "trust": 3.4
          },
          {
            "db": "JUNIPER",
            "id": "JSA10692",
            "trust": 2.6
          },
          {
            "db": "SECTRACK",
            "id": "1032848",
            "trust": 1.7
          },
          {
            "db": "BID",
            "id": "75722",
            "trust": 1.0
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627",
            "trust": 0.7
          },
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "db": "BID",
            "id": "75722"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "id": "VAR-201507-0045",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          }
        ],
        "trust": 1.00555555
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "Network device"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          }
        ]
      },
      "last_update_date": "2025-04-13T23:29:33.571000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10692",
            "trust": 0.8,
            "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10692"
          },
          {
            "title": "Juniper Networks Junos SRX Series SRX Network Security Daemon Patch for Denial of Service Vulnerability",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/61238"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-19",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-Other",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.2,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10692"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1032848"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5363"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-5363"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10692\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10692"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "db": "BID",
            "id": "75722"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "db": "BID",
            "id": "75722"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2015-07-28T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "date": "2015-07-16T00:00:00",
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "date": "2015-07-13T00:00:00",
            "db": "BID",
            "id": "75722"
          },
          {
            "date": "2015-07-23T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "date": "2015-07-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "date": "2015-07-16T14:59:09.747000",
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2015-07-29T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "date": "2015-07-21T00:00:00",
            "db": "VULHUB",
            "id": "VHN-83324"
          },
          {
            "date": "2015-07-13T00:00:00",
            "db": "BID",
            "id": "75722"
          },
          {
            "date": "2015-07-23T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-003872"
          },
          {
            "date": "2015-07-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-5363"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks Junos SRX Series SRX Network Security Daemon Denial of Service Vulnerability",
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2015-04950"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201507-627"
          }
        ],
        "trust": 1.2
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "75722"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201504-0553

    Vulnerability from variot - Updated: 2025-04-13 23:27

    Cross-site scripting (XSS) vulnerability in the Dynamic VPN in Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D20, and 12.3X48 before 12.3X48-D10 on SRX series devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Juniper Junos is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Juniper Junos 12.1X44 prior to 12.1X44-D45, 12.1X46 prior to 12.1X46-D30, 12.1X47 prior to 12.1X47-D20, and 12.3X48 prior to 12.3X48-D10

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201504-0553",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x48"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.3x48"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46-d30"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d45"
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.3x48-d10"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": null,
            "trust": 0.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os 12.1x46-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os 12.1x46-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos 12.1x46-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos d20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos d15",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos -d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos 12.1x45-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d40",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d35",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d34",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d32",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30.4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20.3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d35",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d15",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos 12.3x48-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d30",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d45",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "74016"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "74016"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2015-3005",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2015-3005",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-80966",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-3005",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2015-3005",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201504-183",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-80966",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Cross-site scripting (XSS) vulnerability in the Dynamic VPN in Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D20, and 12.3X48 before 12.3X48-D10 on SRX series devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Juniper Junos is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. \nAn attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Juniper Junos 12.1X44 prior to 12.1X44-D45, 12.1X46 prior to 12.1X46-D30, 12.1X47 prior to 12.1X47-D20, and 12.3X48 prior to 12.3X48-D10",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "BID",
            "id": "74016"
          },
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-3005",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10677",
            "trust": 1.7
          },
          {
            "db": "BID",
            "id": "74016",
            "trust": 1.4
          },
          {
            "db": "SECTRACK",
            "id": "1032089",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183",
            "trust": 0.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10640",
            "trust": 0.3
          },
          {
            "db": "VULHUB",
            "id": "VHN-80966",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "db": "BID",
            "id": "74016"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "id": "VAR-201504-0553",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-13T23:27:37.190000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10677",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10677"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-79",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.6,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10677"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/74016"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1032089"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-3005"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-3005"
          },
          {
            "trust": 0.3,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10640"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10677"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "db": "BID",
            "id": "74016"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "db": "BID",
            "id": "74016"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2015-04-10T00:00:00",
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "date": "2015-04-09T00:00:00",
            "db": "BID",
            "id": "74016"
          },
          {
            "date": "2015-04-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "date": "2015-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "date": "2015-04-10T15:00:09.477000",
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-12-03T00:00:00",
            "db": "VULHUB",
            "id": "VHN-80966"
          },
          {
            "date": "2015-04-09T00:00:00",
            "db": "BID",
            "id": "74016"
          },
          {
            "date": "2015-04-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          },
          {
            "date": "2015-04-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-3005"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper SRX Runs on series devices  Juniper Junos of  Dynamic VPN Vulnerable to cross-site scripting",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002206"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "XSS",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-183"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201504-0550

    Vulnerability from variot - Updated: 2025-04-13 23:23

    Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D15, and 12.3X48 before 12.3X48-D10 on SRX series devices does not properly enforce the log-out-on-disconnect feature when configured in the [system port console] stanza, which allows physically proximate attackers to reconnect to the console port and gain administrative access by leveraging access to the device. Supplementary information : CWE Vulnerability type by CWE-17: Code ( code ) Has been identified. Juniper Junos is prone to a local security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in Juniper Networks Junos in SRX Series devices. The following versions are affected: Juniper Junos 12.1X44 prior to 12.1X44-D45, 12.1X46 prior to 12.1X46-D30, 12.1X47 prior to 12.1X47-D15, and 12.3X48 prior to 12.3X48-D10

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201504-0550",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x48"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.3x48"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46-d30"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d45"
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47-d15"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.3x48-d10"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos 12.1x46-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos d20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos d15",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos -d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos 12.1x44-d40",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d35",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d34",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d32",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30.4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20.3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d15",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d40",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d35",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d30",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d25",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d20",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d15",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos d10",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos 12.3x48-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d30",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d45",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "74019"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "74019"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2015-3002",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 6.9,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.4,
                "id": "CVE-2015-3002",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 6.9,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.4,
                "id": "VHN-80963",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:L/AC:M/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2015-3002",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2015-3002",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201504-180",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-80963",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D15, and 12.3X48 before 12.3X48-D10 on SRX series devices does not properly enforce the log-out-on-disconnect feature when configured in the [system port console] stanza, which allows physically proximate attackers to reconnect to the console port and gain administrative access by leveraging access to the device. Supplementary information : CWE Vulnerability type by CWE-17: Code ( code ) Has been identified. Juniper Junos is prone to a local security-bypass vulnerability. \nAttackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in Juniper Networks Junos in SRX Series devices. The following versions are affected: Juniper Junos 12.1X44 prior to 12.1X44-D45, 12.1X46 prior to 12.1X46-D30, 12.1X47 prior to 12.1X47-D15, and 12.3X48 prior to 12.3X48-D10",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "BID",
            "id": "74019"
          },
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2015-3002",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10672",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "74019",
            "trust": 1.4
          },
          {
            "db": "SECTRACK",
            "id": "1032091",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-80963",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "db": "BID",
            "id": "74019"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "id": "VAR-201504-0550",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-13T23:23:45.544000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10672",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10672"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-17",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-Other",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.6,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10672"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/74019"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1032091"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-3002"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-3002"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10672\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10672"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "db": "BID",
            "id": "74019"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "db": "BID",
            "id": "74019"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2015-04-10T00:00:00",
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "date": "2015-04-09T00:00:00",
            "db": "BID",
            "id": "74019"
          },
          {
            "date": "2015-04-14T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "date": "2015-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "date": "2015-04-10T15:00:07.117000",
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-12-03T00:00:00",
            "db": "VULHUB",
            "id": "VHN-80963"
          },
          {
            "date": "2015-04-09T00:00:00",
            "db": "BID",
            "id": "74019"
          },
          {
            "date": "2015-04-14T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          },
          {
            "date": "2015-04-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2015-3002"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "BID",
            "id": "74019"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201504-180"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "SRX Runs on series devices  Juniper Junos Vulnerable to console port reconnection",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2015-002197"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Design Error",
        "sources": [
          {
            "db": "BID",
            "id": "74019"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201410-1108

    Vulnerability from variot - Updated: 2025-04-13 23:18

    The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet. Juniper Junos is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. Note: This issue affects on SRX series devices. Juniper Networks SRX Series devices with Junos are SRX series devices of Juniper Networks (Juniper Networks) running the Junos operating system. The following versions are affected: Juniper Networks Juniper SRX Series devices with Junos 11.4R12-S4 prior to 11.4, 12.1X44 prior to 12.1X44-D40, 12.1X45 prior to 12.1X45-D30, 12.1X46 prior to 12.1X46-D25, 12.1X47 -D10 before 12.1X47 version

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201410-1108",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r12-s4"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d40"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47-d11"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46-d25"
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45-d30"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d25",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d15",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x45-"
          },
          {
            "model": "junos 12.1x44-d35",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d34",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d32",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30.4",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d30",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d26",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20.3",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r12",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d25",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x45-d30",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d40",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r12-s4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "70366"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "70366"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-3825",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2014-3825",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-71765",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-3825",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-3825",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201410-259",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-71765",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet. Juniper Junos is prone to a remote denial-of-service vulnerability. \nAn attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. \nNote: This issue affects on SRX series devices. Juniper Networks SRX Series devices with Junos are SRX series devices of Juniper Networks (Juniper Networks) running the Junos operating system. The following versions are affected: Juniper Networks Juniper SRX Series devices with Junos 11.4R12-S4 prior to 11.4, 12.1X44 prior to 12.1X44-D40, 12.1X45 prior to 12.1X45-D30, 12.1X46 prior to 12.1X46-D25, 12.1X47 -D10 before 12.1X47 version",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "BID",
            "id": "70366"
          },
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-3825",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10650",
            "trust": 2.0
          },
          {
            "db": "SECTRACK",
            "id": "1031007",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259",
            "trust": 0.7
          },
          {
            "db": "BID",
            "id": "70366",
            "trust": 0.4
          },
          {
            "db": "VULHUB",
            "id": "VHN-71765",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "db": "BID",
            "id": "70366"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "id": "VAR-201410-1108",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-13T23:18:15.387000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10650",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.6,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10650"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1031007"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3825"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3825"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10650\u0026cat=sirt_1\u0026actp=list"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10650"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "db": "BID",
            "id": "70366"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "db": "BID",
            "id": "70366"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-10-14T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "date": "2014-10-08T00:00:00",
            "db": "BID",
            "id": "70366"
          },
          {
            "date": "2014-10-20T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "date": "2014-10-15T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "date": "2014-10-14T14:55:05.070000",
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2015-11-05T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71765"
          },
          {
            "date": "2014-10-08T00:00:00",
            "db": "BID",
            "id": "70366"
          },
          {
            "date": "2015-12-02T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          },
          {
            "date": "2014-10-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-3825"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Junos of  Juniper SRX Service operation interruption in series drivers  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-004847"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "input validation",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201410-259"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201407-0477

    Vulnerability from variot - Updated: 2025-04-13 23:14

    Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet. Juniper Junos is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in Juniper Networks Juniper Junos 12.1X46 prior to 12.1X46-D20 and 12.1X47 prior to 12.1X47-D10 on SRX Series devices

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201407-0477",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46 thats all  12.1x46-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47 thats all  12.1x47-d10"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "68551"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "68551"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-3815",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2014-3815",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-71755",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-3815",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-3815",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201407-281",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-71755",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet. Juniper Junos is prone to a remote denial-of-service vulnerability. \nAn attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in Juniper Networks Juniper Junos 12.1X46 prior to 12.1X46-D20 and 12.1X47 prior to 12.1X47-D10 on SRX Series devices",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "BID",
            "id": "68551"
          },
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-3815",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10633",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "68551",
            "trust": 1.4
          },
          {
            "db": "SECTRACK",
            "id": "1030557",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-71755",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "db": "BID",
            "id": "68551"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "id": "VAR-201407-0477",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-13T23:14:45.942000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10633",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.9,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10633"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/68551"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030557"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3815"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3815"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10633"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "db": "BID",
            "id": "68551"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "db": "BID",
            "id": "68551"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "date": "2014-07-11T00:00:00",
            "db": "BID",
            "id": "68551"
          },
          {
            "date": "2014-07-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "date": "2014-07-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "date": "2014-07-11T20:55:02.500000",
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-07-24T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71755"
          },
          {
            "date": "2014-07-11T00:00:00",
            "db": "BID",
            "id": "68551"
          },
          {
            "date": "2014-07-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          },
          {
            "date": "2014-07-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-3815"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on series devices  Junos Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003343"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "input validation",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-281"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201407-0482

    Vulnerability from variot - Updated: 2025-04-13 23:10

    Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4. Juniper Junos is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. Note: This issue affects on SRX series devices. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. The following releases are affected: Juniper Junos 11.4 prior to 11.4R8, 12.1 prior to 12.1R5, 12.1X44 prior to 12.1X44-D20, 12.1X45 prior to 12.1X45-D15, 12.1X46 prior to 12.1X46-D10 , 12.1X47 versions prior to 12.1X47-D10

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201407-0482",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x47"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x46"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4 thats all  11.4r8"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1 thats all  12.1r5"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44 thats all  12.1x44-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45 thats all  12.1x45-d15"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x46 thats all  12.1x46-d10"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x47 thats all  12.1x47-d10"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x47-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x46-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos d15",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "12.1x45-"
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r5",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "68553"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "68553"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-3822",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "HIGH",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 5.4,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 4.9,
                "id": "CVE-2014-3822",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "HIGH",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 5.4,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 4.9,
                "id": "VHN-71762",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:H/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-3822",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-3822",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201407-286",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-71762",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4. Juniper Junos is prone to a remote denial-of-service vulnerability. \nAn attacker can exploit this issue to cause an affected device to crash, denying service to legitimate users. \nNote: This issue affects on SRX series devices. Juniper Networks Junos on SRX Series devices is a set of network operating systems of Juniper Networks (Juniper Networks) running on SRX series service gateway devices. The operating system provides a secure programming interface and Junos SDK. The following releases are affected: Juniper Junos 11.4 prior to 11.4R8, 12.1 prior to 12.1R5, 12.1X44 prior to 12.1X44-D20, 12.1X45 prior to 12.1X45-D15, 12.1X46 prior to 12.1X46-D10 , 12.1X47 versions prior to 12.1X47-D10",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "BID",
            "id": "68553"
          },
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-3822",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10641",
            "trust": 2.0
          },
          {
            "db": "SECTRACK",
            "id": "1030560",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286",
            "trust": 0.7
          },
          {
            "db": "BID",
            "id": "68553",
            "trust": 0.4
          },
          {
            "db": "VULHUB",
            "id": "VHN-71762",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "db": "BID",
            "id": "68553"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "id": "VAR-201407-0482",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-13T23:10:13.311000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10641",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.9,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10641"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1030560"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3822"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3822"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10641"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "db": "BID",
            "id": "68553"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "db": "BID",
            "id": "68553"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "date": "2014-07-09T00:00:00",
            "db": "BID",
            "id": "68553"
          },
          {
            "date": "2014-07-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "date": "2014-07-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "date": "2014-07-11T20:55:02.717000",
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-07-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-71762"
          },
          {
            "date": "2014-07-09T00:00:00",
            "db": "BID",
            "id": "68553"
          },
          {
            "date": "2014-07-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          },
          {
            "date": "2014-07-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          },
          {
            "date": "2025-04-12T10:46:40.837000",
            "db": "NVD",
            "id": "CVE-2014-3822"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on series devices  Junos Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-003348"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "input validation",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201407-286"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201307-0475

    Vulnerability from variot - Updated: 2025-04-11 23:20

    Buffer overflow in flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7, 12.1 before 12.1R6, and 12.1X44 before 12.1X44-D15 on SRX devices, when Captive Portal is enabled with the UAC enforcer role, allows remote attackers to execute arbitrary code via crafted HTTP requests, aka PR 849100. Vendors have confirmed this vulnerability PR 849100 It is released as.Skillfully crafted by a third party HTTP Arbitrary code may be executed via a request. Juniper Networks Junos is prone to a remote buffer-overflow vulnerability. Attackers may leverage this issue to execute arbitrary code in the context of the affected device. Failed exploit attempts may result in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. Buffering exists in flowd (Flow Daemon) in Juniper Junos 10.4 releases prior to 10.4S14, 11.4 releases prior to 11.4R7, 12.1 releases prior to 12.1R6, and 12.1X44 releases prior to 12.1X44-D15 on SRX Series Server Gateway devices area overflow vulnerability

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201307-0475",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r7"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r6"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d15"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s14"
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "junos 12.1x44-d15",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r7",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4s14",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "61125"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue",
        "sources": [
          {
            "db": "BID",
            "id": "61125"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-4685",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2013-4685",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "VHN-64687",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-4685",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-4685",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201307-229",
                "trust": 0.6,
                "value": "CRITICAL"
              },
              {
                "author": "VULHUB",
                "id": "VHN-64687",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Buffer overflow in flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7, 12.1 before 12.1R6, and 12.1X44 before 12.1X44-D15 on SRX devices, when Captive Portal is enabled with the UAC enforcer role, allows remote attackers to execute arbitrary code via crafted HTTP requests, aka PR 849100. Vendors have confirmed this vulnerability PR 849100 It is released as.Skillfully crafted by a third party HTTP Arbitrary code may be executed via a request. Juniper Networks Junos is prone to a remote buffer-overflow vulnerability. \nAttackers may leverage this issue to execute arbitrary code in the context of the affected device. Failed exploit attempts may result in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. Buffering exists in flowd (Flow Daemon) in Juniper Junos 10.4 releases prior to 10.4S14, 11.4 releases prior to 11.4R7, 12.1 releases prior to 12.1R6, and 12.1X44 releases prior to 12.1X44-D15 on SRX Series Server Gateway devices area overflow vulnerability",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "BID",
            "id": "61125"
          },
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-4685",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10574",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "61125",
            "trust": 1.4
          },
          {
            "db": "OSVDB",
            "id": "95108",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-64687",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "db": "BID",
            "id": "61125"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "id": "VAR-201307-0475",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:20:35.288000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10574",
            "trust": 0.8,
            "url": "http://kb.juniper.net/JSA10574"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://kb.juniper.net/jsa10574"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/61125"
          },
          {
            "trust": 1.1,
            "url": "http://osvdb.org/95108"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4685"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4685"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10574"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "db": "BID",
            "id": "61125"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "db": "BID",
            "id": "61125"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61125"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "date": "2013-07-11T14:55:01.350000",
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-08-22T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64687"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61125"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          },
          {
            "date": "2013-07-19T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-4685"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on the device  Junos of  flowd Vulnerable to buffer overflow",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003332"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-229"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201307-0477

    Vulnerability from variot - Updated: 2025-04-11 23:16

    flowd in Juniper Junos 10.4 before 10.4S14, 11.2 and 11.4 before 11.4R6-S2, and 12.1 before 12.1R6 on SRX devices, when certain Application Layer Gateways (ALGs) are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted TCP packets, aka PRs 727980, 806269, and 835593. Juniper Networks Junos is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to cause the host system to crash, resulting in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in flowd in Juniper Junos 10.4 prior to 10.4S14, 11.4 prior to 11.2 and 11.4R6-S2, and 12.1 prior to 12.1R6 on SRX Series Server Gateway devices

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201307-0477",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r6"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r6-s2"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s14"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.2"
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "junos 12.1r6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r7",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r6-s2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4s14",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "61122"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported these issues.",
        "sources": [
          {
            "db": "BID",
            "id": "61122"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-4687",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2013-4687",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-64689",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-4687",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-4687",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201307-231",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-64689",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64689"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "flowd in Juniper Junos 10.4 before 10.4S14, 11.2 and 11.4 before 11.4R6-S2, and 12.1 before 12.1R6 on SRX devices, when certain Application Layer Gateways (ALGs) are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted TCP packets, aka PRs 727980, 806269, and 835593. Juniper Networks Junos is prone to multiple denial-of-service vulnerabilities. \nAttackers can exploit these issues to cause the host system to crash, resulting in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in flowd in Juniper Junos 10.4 prior to 10.4S14, 11.4 prior to 11.2 and 11.4R6-S2, and 12.1 prior to 12.1R6 on SRX Series Server Gateway devices",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "db": "BID",
            "id": "61122"
          },
          {
            "db": "VULHUB",
            "id": "VHN-64689"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-4687",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10577",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "61122",
            "trust": 1.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-64689",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64689"
          },
          {
            "db": "BID",
            "id": "61122"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "id": "VAR-201307-0477",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64689"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:16:37.486000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10577",
            "trust": 0.8,
            "url": "http://kb.juniper.net/JSA10577"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://kb.juniper.net/jsa10577"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/61122"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4687"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4687"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10577\u0026actp=rss"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64689"
          },
          {
            "db": "BID",
            "id": "61122"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-64689"
          },
          {
            "db": "BID",
            "id": "61122"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64689"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61122"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "date": "2013-07-11T14:55:01.387000",
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-08-22T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64689"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61122"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-4687"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on the device  Junos of  flowd Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003334"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-231"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201307-0478

    Vulnerability from variot - Updated: 2025-04-11 23:12

    flowd in Juniper Junos 10.4 before 10.4R11 on SRX devices, when the MSRPC Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted MSRPC requests, aka PR 772834. Vendors have confirmed this vulnerability PR 772834 It is released as.Skillfully crafted by a third party MSRPC Service disruption via request ( Daemon crash ) There is a possibility of being put into a state. Juniper Networks Junos is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue will result in denial-of-service conditions. Juniper Networks Junos 10.4 is vulnerable; other versions may also be affected. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in flowd (the Flow daemon) in Juniper Junos 10.4 releases prior to 10.4R11 on SRX Series Server Gateway devices

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201307-0478",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4r11"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "junos 10.4r11",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "61124"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "61124"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-4688",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2013-4688",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-64690",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-4688",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-4688",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201307-232",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-64690",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64690"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "flowd in Juniper Junos 10.4 before 10.4R11 on SRX devices, when the MSRPC Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted MSRPC requests, aka PR 772834. Vendors have confirmed this vulnerability PR 772834 It is released as.Skillfully crafted by a third party MSRPC Service disruption via request ( Daemon crash ) There is a possibility of being put into a state. Juniper Networks Junos is prone to a remote denial-of-service vulnerability. \nSuccessfully exploiting this issue will result in denial-of-service conditions. \nJuniper Networks Junos 10.4 is vulnerable; other versions may also be affected. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in flowd (the Flow daemon) in Juniper Junos 10.4 releases prior to 10.4R11 on SRX Series Server Gateway devices",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "db": "BID",
            "id": "61124"
          },
          {
            "db": "VULHUB",
            "id": "VHN-64690"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-4688",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10578",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "61124",
            "trust": 1.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-64690",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64690"
          },
          {
            "db": "BID",
            "id": "61124"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "id": "VAR-201307-0478",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64690"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:12:49.588000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10578",
            "trust": 0.8,
            "url": "http://kb.juniper.net/JSA10578"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://kb.juniper.net/jsa10578"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/61124"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4688"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4688"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10578"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64690"
          },
          {
            "db": "BID",
            "id": "61124"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-64690"
          },
          {
            "db": "BID",
            "id": "61124"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64690"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61124"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "date": "2013-07-11T14:55:01.403000",
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-08-22T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64690"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61124"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          },
          {
            "date": "2013-07-19T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-4688"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on the device  Junos of  flowd Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003335"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-232"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201307-0474

    Vulnerability from variot - Updated: 2025-04-11 23:12

    flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM and NAT are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted PIM packets, aka PR 842253. Juniper Networks Junos is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue will result in denial-of-service conditions. The operating system provides a secure programming interface and Junos SDK. Denial of service exists in flowd (Flow Daemon) in Juniper Junos 10.4 releases prior to 10.4S14, 11.4 releases prior to 11.4R8, 12.1 releases prior to 12.1R7, and 12.1X44 releases prior to 12.1X44-D15 on SRX Series Server Gateway devices loophole

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201307-0474",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r8"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r7"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d15"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s14"
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "junos 11.4r7-s1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r7",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r6.6",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r6-s2",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r5.5",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r3.7",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4s13",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4r6",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4r14",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4r11",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d15",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r7",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4s14",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "61127"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "61127"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-4684",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2013-4684",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-64686",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-4684",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-4684",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201307-228",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-64686",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64686"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM and NAT are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted PIM packets, aka PR 842253. Juniper Networks Junos is prone to a remote denial-of-service vulnerability. \nSuccessfully exploiting this issue will result in denial-of-service conditions. The operating system provides a secure programming interface and Junos SDK. Denial of service exists in flowd (Flow Daemon) in Juniper Junos 10.4 releases prior to 10.4S14, 11.4 releases prior to 11.4R8, 12.1 releases prior to 12.1R7, and 12.1X44 releases prior to 12.1X44-D15 on SRX Series Server Gateway devices loophole",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "db": "BID",
            "id": "61127"
          },
          {
            "db": "VULHUB",
            "id": "VHN-64686"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-4684",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10573",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "61127",
            "trust": 1.4
          },
          {
            "db": "SECUNIA",
            "id": "54157",
            "trust": 1.1
          },
          {
            "db": "OSVDB",
            "id": "95107",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-64686",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64686"
          },
          {
            "db": "BID",
            "id": "61127"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "id": "VAR-201307-0474",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64686"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:12:00.507000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10573",
            "trust": 0.8,
            "url": "http://kb.juniper.net/JSA10573"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://kb.juniper.net/jsa10573"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/61127"
          },
          {
            "trust": 1.1,
            "url": "http://osvdb.org/95107"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/54157"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4684"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4684"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10573"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64686"
          },
          {
            "db": "BID",
            "id": "61127"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-64686"
          },
          {
            "db": "BID",
            "id": "61127"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64686"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61127"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "date": "2013-07-11T14:55:01.310000",
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-08-22T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64686"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61127"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-4684"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on the device  Junos of  flowd Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003331"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-228"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201401-0349

    Vulnerability from variot - Updated: 2025-04-11 23:10

    Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message. Juniper Junos is prone to a remote denial-of-service vulnerability. Successful exploits may allow the attacker to cause denial-of-service conditions. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company's hardware system. The operating system provides a secure programming interface and Junos SDK. The following releases are affected: Juniper Junos 10.4 prior to 10.4R16, 11.4 prior to 11.4R8, 12.1R prior to 12.1R7, 12.1X44 prior to 12.1X44-D20, 12.1X45 prior to 12.1X45-D10

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201401-0349",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1r"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r8"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r7"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4r16"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45-d10"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r"
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "64769"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-0618",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2014-0618",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-68111",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-0618",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-0618",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201401-159",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-68111",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68111"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message. Juniper Junos is prone to a remote denial-of-service  vulnerability. \nSuccessful exploits may allow the attacker to cause denial-of-service conditions. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company\u0027s hardware system. The operating system provides a secure programming interface and Junos SDK. The following releases are affected: Juniper Junos 10.4 prior to 10.4R16, 11.4 prior to 11.4R8, 12.1R prior to 12.1R7, 12.1X44 prior to 12.1X44-D20, 12.1X45 prior to 12.1X45-D10",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "db": "BID",
            "id": "64769"
          },
          {
            "db": "VULHUB",
            "id": "VHN-68111"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-0618",
            "trust": 2.8
          },
          {
            "db": "OSVDB",
            "id": "101864",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10611",
            "trust": 1.7
          },
          {
            "db": "BID",
            "id": "64769",
            "trust": 1.4
          },
          {
            "db": "SECTRACK",
            "id": "1029584",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-68111",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68111"
          },
          {
            "db": "BID",
            "id": "64769"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "id": "VAR-201401-0349",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68111"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:10:34.494000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10611",
            "trust": 0.8,
            "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://osvdb.org/101864"
          },
          {
            "trust": 1.6,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10611"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/64769"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1029584"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0618"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-0618"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "https://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10611"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68111"
          },
          {
            "db": "BID",
            "id": "64769"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-68111"
          },
          {
            "db": "BID",
            "id": "64769"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-01-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-68111"
          },
          {
            "date": "2014-01-10T00:00:00",
            "db": "BID",
            "id": "64769"
          },
          {
            "date": "2014-01-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "date": "2014-01-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "date": "2014-01-11T04:44:42.617000",
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-08-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-68111"
          },
          {
            "date": "2014-01-10T00:00:00",
            "db": "BID",
            "id": "64769"
          },
          {
            "date": "2014-01-15T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          },
          {
            "date": "2014-01-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2014-0618"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-159"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Operates on the series service gateway  Junos Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001038"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Failure to Handle Exceptional Conditions",
        "sources": [
          {
            "db": "BID",
            "id": "64769"
          }
        ],
        "trust": 0.3
      }
    }

    VAR-201307-0479

    Vulnerability from variot - Updated: 2025-04-11 23:02

    Juniper Junos 10.4 before 10.4S13, 11.4 before 11.4R7-S1, 12.1 before 12.1R5-S3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on the SRX1400, SRX3400, and SRX3600 does not properly initialize memory locations used during padding of Ethernet packets, which allows remote attackers to obtain sensitive information by reading packet data, aka PR 829536, a related issue to CVE-2003-0001. Vendors have confirmed this vulnerability PR 829536 It is released as. This vulnerability CVE-2003-0001 And related issues.By reading the packet data by a third party, important information may be obtained. Multiple Juniper Gateway Products are prone to an information-disclosure vulnerability. Attackers can leverage this issue to gain access to sensitive information. Information obtained will aid in further attacks. Juniper Gateway Products SRX1400, SRX3400, and SRX3600 are vulnerable. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company's hardware system. The operating system provides a secure programming interface and Junos SDK

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201307-0479",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r7-s1"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45-d10"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s13"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r5-s3"
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "junos 12.1x45-d10",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r7",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r5-s3",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r7-s1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4s13",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4r14",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "61123"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks",
        "sources": [
          {
            "db": "BID",
            "id": "61123"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-4690",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2013-4690",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.9,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-64692",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-4690",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-4690",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201307-233",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-64692",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2013-4690",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "db": "VULMON",
            "id": "CVE-2013-4690"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos 10.4 before 10.4S13, 11.4 before 11.4R7-S1, 12.1 before 12.1R5-S3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on the SRX1400, SRX3400, and SRX3600 does not properly initialize memory locations used during padding of Ethernet packets, which allows remote attackers to obtain sensitive information by reading packet data, aka PR 829536, a related issue to CVE-2003-0001. Vendors have confirmed this vulnerability PR 829536 It is released as. This vulnerability CVE-2003-0001 And related issues.By reading the packet data by a third party, important information may be obtained. Multiple Juniper Gateway Products are prone to an information-disclosure vulnerability. \nAttackers can leverage this issue to gain access to sensitive information. Information obtained will aid in further attacks. \nJuniper Gateway Products SRX1400, SRX3400, and SRX3600 are vulnerable. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company\u0027s hardware system. The operating system provides a secure programming interface and Junos SDK",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "BID",
            "id": "61123"
          },
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "db": "VULMON",
            "id": "CVE-2013-4690"
          }
        ],
        "trust": 2.07
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-4690",
            "trust": 2.9
          },
          {
            "db": "JUNIPER",
            "id": "JSA10579",
            "trust": 2.1
          },
          {
            "db": "BID",
            "id": "61123",
            "trust": 1.5
          },
          {
            "db": "OSVDB",
            "id": "95112",
            "trust": 1.2
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-64692",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2013-4690",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "db": "VULMON",
            "id": "CVE-2013-4690"
          },
          {
            "db": "BID",
            "id": "61123"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "id": "VAR-201307-0479",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:02:57.492000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10579",
            "trust": 0.8,
            "url": "http://kb.juniper.net/JSA10579"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-399",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.8,
            "url": "http://kb.juniper.net/jsa10579"
          },
          {
            "trust": 1.3,
            "url": "http://www.securityfocus.com/bid/61123"
          },
          {
            "trust": 1.2,
            "url": "http://osvdb.org/95112"
          },
          {
            "trust": 1.2,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85627"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-4690"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-4690"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.3,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10579"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/399.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "db": "VULMON",
            "id": "CVE-2013-4690"
          },
          {
            "db": "BID",
            "id": "61123"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "db": "VULMON",
            "id": "CVE-2013-4690"
          },
          {
            "db": "BID",
            "id": "61123"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-07-11T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "VULMON",
            "id": "CVE-2013-4690"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61123"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "date": "2013-07-12T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "date": "2013-07-11T14:55:01.423000",
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-08-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-64692"
          },
          {
            "date": "2017-08-29T00:00:00",
            "db": "VULMON",
            "id": "CVE-2013-4690"
          },
          {
            "date": "2013-07-11T00:00:00",
            "db": "BID",
            "id": "61123"
          },
          {
            "date": "2013-07-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          },
          {
            "date": "2013-07-19T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-4690"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX1400 , SRX3400 ,and  SRX3600 Run on  Junos Vulnerability in which important information is obtained",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-003336"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "resource management error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201307-233"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201310-0398

    Vulnerability from variot - Updated: 2025-04-11 23:01

    Juniper Junos before 10.4S14, 11.4 before 11.4R5-S2, 12.1R before 12.1R3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D15 on SRX Series services gateways, when a plugin using TCP proxy is configured, allows remote attackers to cause a denial of service (flow daemon crash) via an unspecified sequence of TCP packets. Juniper Networks Junos is prone to a remote denial-of-service vulnerability. Exploiting this issue may allow remote attackers to trigger denial-of-service conditions. Note: To exploit this issue, attackers require a plugin (e.g. ALGs, UTM) configured to use a TCP proxy. The operating system provides a secure programming interface and Junos SDK. A denial of service vulnerability exists in Juniper Junos running on SRX Series Services Gateway devices. The following versions are affected: Junos 10.4 and earlier, 11.4, 12.1, 12.1X44, 12.1X45

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201310-0398",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "9.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "9.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "8.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "8.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "9.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "9.5"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "9.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "8.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "9.6"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "juniper",
            "version": "12.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "4.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.3"
          },
          {
            "model": "junos",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.5"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.5"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.6"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "4.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.6"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "4.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "4.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "4.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.7"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r5-s2"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d20"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r3"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45-d15"
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r"
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "model": "junos 12.1x45-d15",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1x44-d20",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 12.1r3",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r6.6",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 11.4r5-s2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos 10.4s14",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "62963"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "62963"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-6015",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2013-6015",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-66017",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-6015",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-6015",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201310-258",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-66017",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos before 10.4S14, 11.4 before 11.4R5-S2, 12.1R before 12.1R3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D15 on SRX Series services gateways, when a plugin using TCP proxy is configured, allows remote attackers to cause a denial of service (flow daemon crash) via an unspecified sequence of TCP packets. Juniper Networks Junos is prone to a remote denial-of-service vulnerability. \nExploiting this issue may allow remote attackers to trigger denial-of-service conditions. \nNote: To exploit this issue, attackers require a plugin (e.g. ALGs, UTM) configured to use a TCP proxy. The operating system provides a secure programming interface and Junos SDK. A denial of service vulnerability exists in Juniper Junos running on SRX Series Services Gateway devices. The following versions are affected: Junos 10.4 and earlier, 11.4, 12.1, 12.1X44, 12.1X45",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "BID",
            "id": "62963"
          },
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-6015",
            "trust": 2.8
          },
          {
            "db": "JUNIPER",
            "id": "JSA10596",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "55218",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1029177",
            "trust": 1.1
          },
          {
            "db": "OSVDB",
            "id": "98368",
            "trust": 1.1
          },
          {
            "db": "BID",
            "id": "62963",
            "trust": 1.0
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-66017",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "db": "BID",
            "id": "62963"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "id": "VAR-201310-0398",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T23:01:44.829000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10596",
            "trust": 0.8,
            "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10596"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.9,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10596"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/55218"
          },
          {
            "trust": 1.1,
            "url": "http://osvdb.org/98368"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1029177"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-6015"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-6015"
          },
          {
            "trust": 0.6,
            "url": "http://www.securityfocus.com/bid/62963"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10596"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "db": "BID",
            "id": "62963"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "db": "BID",
            "id": "62963"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-10-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "date": "2013-10-09T00:00:00",
            "db": "BID",
            "id": "62963"
          },
          {
            "date": "2013-10-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "date": "2013-10-17T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "date": "2013-10-17T23:55:04.673000",
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2016-10-07T00:00:00",
            "db": "VULHUB",
            "id": "VHN-66017"
          },
          {
            "date": "2013-10-09T00:00:00",
            "db": "BID",
            "id": "62963"
          },
          {
            "date": "2013-10-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          },
          {
            "date": "2013-10-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-6015"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on the series service gateway  Junos Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004806"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "input validation",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-258"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201310-0385

    Vulnerability from variot - Updated: 2025-04-11 22:53

    Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message. Juniper Networks Junos is prone to a remote buffer-overflow vulnerability. Attackers may leverage this issue to execute arbitrary code in the context of the affected device. Failed exploit attempts may result in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Junos 10.4 and earlier, 11.4, 12.1X44, 12.1X45

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201310-0385",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "4.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "4.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "4.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "4.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "4.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "5.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "9.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "9.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "9.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.3"
          },
          {
            "model": "junos",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.5"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.5"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.6"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "8.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.6"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "9.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.2"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.7"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "9.6"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "9.5"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.0"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.1"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "5.4"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r7-s2"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45"
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x45-d10"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1x44-d15"
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s14"
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "networks srx5800",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5800"
          },
          {
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "10.4"
          }
        ],
        "sources": [
          {
            "db": "BID",
            "id": "62962"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue",
        "sources": [
          {
            "db": "BID",
            "id": "62962"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2013-6013",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2013-6013",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "VHN-66015",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2013-6013",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2013-6013",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201310-462",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-66015",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Buffer overflow in the flow daemon (flowd) in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7-S2, 12.1.X44 before 12.1X44-D15, 12.1X45 before 12.1X45-D10 on SRX devices, when using telnet pass-through authentication on the firewall, might allow remote attackers to execute arbitrary code via a crafted telnet message. Juniper Networks Junos is prone to a remote buffer-overflow vulnerability. \nAttackers may leverage this issue to execute arbitrary code in the context of the affected device. Failed exploit attempts may result in a denial-of-service condition. The operating system provides a secure programming interface and Junos SDK. The following versions are affected: Junos 10.4 and earlier, 11.4, 12.1X44, 12.1X45",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "BID",
            "id": "62962"
          },
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2013-6013",
            "trust": 2.8
          },
          {
            "db": "BID",
            "id": "62962",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "55109",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10594",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1029175",
            "trust": 1.1
          },
          {
            "db": "OSVDB",
            "id": "98369",
            "trust": 1.1
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-66015",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "db": "BID",
            "id": "62962"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "id": "VAR-201310-0385",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          }
        ],
        "trust": 0.40555555
      },
      "last_update_date": "2025-04-11T22:53:10.964000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10594",
            "trust": 0.8,
            "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10594"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-119",
            "trust": 1.9
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/62962"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/55109"
          },
          {
            "trust": 1.6,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10594"
          },
          {
            "trust": 1.1,
            "url": "http://osvdb.org/98369"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1029175"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87847"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-6013"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-6013"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10594"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "db": "BID",
            "id": "62962"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "db": "BID",
            "id": "62962"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2013-10-17T00:00:00",
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "date": "2013-10-11T00:00:00",
            "db": "BID",
            "id": "62962"
          },
          {
            "date": "2013-10-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "date": "2013-10-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "date": "2013-10-17T23:55:04.657000",
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2017-08-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-66015"
          },
          {
            "date": "2013-10-11T00:00:00",
            "db": "BID",
            "id": "62962"
          },
          {
            "date": "2013-10-22T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          },
          {
            "date": "2013-10-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2013-6013"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Runs on the device  Junos of  flow Daemon buffer overflow vulnerability",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2013-004805"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201310-462"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-201401-0348

    Vulnerability from variot - Updated: 2025-04-11 22:48

    Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet. Juniper Junos is prone to a remote denial-of-service vulnerability. Successful exploits may allow the attacker to cause denial-of-service conditions. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company's hardware system. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in Juniper Junos on the SRX Series Services Gateway. The following releases are affected: Juniper Junos 10.4S prior to 10.4S15, 10.4R prior to 10.4R16, 11.4 prior to 11.4R9, 12.1R prior to 12.1R7

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-201401-0348",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "10.4s"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "10.4r"
          },
          {
            "model": "junos",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "juniper",
            "version": "12.1r"
          },
          {
            "model": "srx220",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx550",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx210",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx1400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4r"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4r9"
          },
          {
            "model": "srx3400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s15"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "11.4"
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r7"
          },
          {
            "model": "srx210",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx650",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4r16"
          },
          {
            "model": "srx550",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5800",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx100",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx220",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx5600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx110",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx240",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "10.4s"
          },
          {
            "model": "junos os",
            "scope": "lt",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "12.1r"
          },
          {
            "model": "srx1400",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "model": "srx3600",
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:juniper:junos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx100",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx110",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx1400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx210",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx220",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx240",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3400",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx3600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx550",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5600",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx5800",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:juniper:srx650",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The vendor reported this issue.",
        "sources": [
          {
            "db": "BID",
            "id": "64764"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2014-0617",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.1,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2014-0617",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.1,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-68110",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2014-0617",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2014-0617",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-201401-219",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-68110",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68110"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet. Juniper Junos is prone to a remote denial-of-service  vulnerability. \nSuccessful exploits may allow the attacker to cause denial-of-service conditions. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company\u0027s hardware system. The operating system provides a secure programming interface and Junos SDK. A security vulnerability exists in Juniper Junos on the SRX Series Services Gateway. The following releases are affected: Juniper Junos 10.4S prior to 10.4S15, 10.4R prior to 10.4R16, 11.4 prior to 11.4R9, 12.1R prior to 12.1R7",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "db": "BID",
            "id": "64764"
          },
          {
            "db": "VULHUB",
            "id": "VHN-68110"
          }
        ],
        "trust": 1.98
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2014-0617",
            "trust": 2.8
          },
          {
            "db": "BID",
            "id": "64764",
            "trust": 2.0
          },
          {
            "db": "OSVDB",
            "id": "101863",
            "trust": 1.7
          },
          {
            "db": "JUNIPER",
            "id": "JSA10610",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1029583",
            "trust": 1.7
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219",
            "trust": 0.7
          },
          {
            "db": "SECUNIA",
            "id": "56375",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-68110",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68110"
          },
          {
            "db": "BID",
            "id": "64764"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "id": "VAR-201401-0348",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68110"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-11T22:48:23.991000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "JSA10610",
            "trust": 0.8,
            "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/64764"
          },
          {
            "trust": 1.7,
            "url": "http://osvdb.org/101863"
          },
          {
            "trust": 1.7,
            "url": "http://www.securitytracker.com/id/1029583"
          },
          {
            "trust": 1.6,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10610"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0617"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-0617"
          },
          {
            "trust": 0.6,
            "url": "http://secunia.com/advisories/56375"
          },
          {
            "trust": 0.3,
            "url": "http://www.juniper.net/"
          },
          {
            "trust": 0.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10610"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-68110"
          },
          {
            "db": "BID",
            "id": "64764"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-68110"
          },
          {
            "db": "BID",
            "id": "64764"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-01-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-68110"
          },
          {
            "date": "2014-01-10T00:00:00",
            "db": "BID",
            "id": "64764"
          },
          {
            "date": "2014-01-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "date": "2014-01-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "date": "2014-01-15T16:08:04.377000",
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2014-01-15T00:00:00",
            "db": "VULHUB",
            "id": "VHN-68110"
          },
          {
            "date": "2014-05-29T01:33:00",
            "db": "BID",
            "id": "64764"
          },
          {
            "date": "2014-01-16T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          },
          {
            "date": "2014-01-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          },
          {
            "date": "2025-04-11T00:51:21.963000",
            "db": "NVD",
            "id": "CVE-2014-0617"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Juniper Networks SRX Operates on the series service gateway  Juniper Junos Service disruption in  (DoS) Vulnerabilities",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2014-001067"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-201401-219"
          }
        ],
        "trust": 0.6
      }
    }

    CVE-2014-3825 (GCVE-0-2014-3825)

    Vulnerability from nvd – Published: 2014-10-14 14:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    http://www.securitytracker.com/id/1031007 vdb-entryx_refsource_SECTRACK
    Date Public
    2014-10-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.053Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
              },
              {
                "name": "1031007",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1031007"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-10-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-10-27T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
            },
            {
              "name": "1031007",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1031007"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3825",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
                },
                {
                  "name": "1031007",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1031007"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3825",
        "datePublished": "2014-10-14T14:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.053Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3822 (GCVE-0-2014-3822)

    Vulnerability from nvd – Published: 2014-07-11 20:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securitytracker.com/id/1030560 vdb-entryx_refsource_SECTRACK
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    Date Public
    2014-07-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.621Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1030560",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030560"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-07-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-15T11:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1030560",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030560"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3822",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1030560",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030560"
                },
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3822",
        "datePublished": "2014-07-11T20:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.621Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3817 (GCVE-0-2014-3817)

    Vulnerability from nvd – Published: 2014-07-11 20:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/68545 vdb-entryx_refsource_BID
    http://secunia.com/advisories/59136 third-party-advisoryx_refsource_SECUNIA
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    http://www.securitytracker.com/id/1030558 vdb-entryx_refsource_SECTRACK
    Date Public
    2014-07-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.363Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "68545",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/68545"
              },
              {
                "name": "59136",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/59136"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
              },
              {
                "name": "1030558",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030558"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-07-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-25T19:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "68545",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/68545"
            },
            {
              "name": "59136",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/59136"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
            },
            {
              "name": "1030558",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030558"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3817",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "68545",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/68545"
                },
                {
                  "name": "59136",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/59136"
                },
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
                },
                {
                  "name": "1030558",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030558"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3817",
        "datePublished": "2014-07-11T20:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.363Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3815 (GCVE-0-2014-3815)

    Vulnerability from nvd – Published: 2014-07-11 20:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/68551 vdb-entryx_refsource_BID
    http://www.securitytracker.com/id/1030557 vdb-entryx_refsource_SECTRACK
    Date Public
    2014-07-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.296Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
              },
              {
                "name": "68551",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/68551"
              },
              {
                "name": "1030557",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030557"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-07-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-21T13:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
            },
            {
              "name": "68551",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/68551"
            },
            {
              "name": "1030557",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030557"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3815",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
                },
                {
                  "name": "68551",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/68551"
                },
                {
                  "name": "1030557",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030557"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3815",
        "datePublished": "2014-07-11T20:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.296Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-0617 (GCVE-0-2014-0617)

    Vulnerability from nvd – Published: 2014-01-14 18:00 – Updated: 2024-08-06 09:20
    VLAI
    Summary
    Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securitytracker.com/id/1029583 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/64764 vdb-entryx_refsource_BID
    http://osvdb.org/101863 vdb-entryx_refsource_OSVDB
    http://kb.juniper.net/InfoCenter/index?page=conte… x_refsource_CONFIRM
    Date Public
    2014-01-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T09:20:19.825Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1029583",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1029583"
              },
              {
                "name": "64764",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/64764"
              },
              {
                "name": "101863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/101863"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-01-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-01-14T17:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1029583",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1029583"
            },
            {
              "name": "64764",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/64764"
            },
            {
              "name": "101863",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/101863"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-0617",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1029583",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1029583"
                },
                {
                  "name": "64764",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/64764"
                },
                {
                  "name": "101863",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/101863"
                },
                {
                  "name": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610",
                  "refsource": "CONFIRM",
                  "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-0617",
        "datePublished": "2014-01-14T18:00:00.000Z",
        "dateReserved": "2013-12-31T00:00:00.000Z",
        "dateUpdated": "2024-08-06T09:20:19.825Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-0618 (GCVE-0-2014-0618)

    Vulnerability from nvd – Published: 2014-01-11 02:00 – Updated: 2024-08-06 09:20
    VLAI
    Summary
    Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securitytracker.com/id/1029584 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/64769 vdb-entryx_refsource_BID
    http://osvdb.org/101864 vdb-entryx_refsource_OSVDB
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    Date Public
    2014-01-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T09:20:19.883Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "juniper-junos-srx-cve20140618-dos(90238)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
              },
              {
                "name": "1029584",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1029584"
              },
              {
                "name": "64769",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/64769"
              },
              {
                "name": "101864",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/101864"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-01-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "juniper-junos-srx-cve20140618-dos(90238)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
            },
            {
              "name": "1029584",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1029584"
            },
            {
              "name": "64769",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/64769"
            },
            {
              "name": "101864",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/101864"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-0618",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "juniper-junos-srx-cve20140618-dos(90238)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
                },
                {
                  "name": "1029584",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1029584"
                },
                {
                  "name": "64769",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/64769"
                },
                {
                  "name": "101864",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/101864"
                },
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-0618",
        "datePublished": "2014-01-11T02:00:00.000Z",
        "dateReserved": "2013-12-31T00:00:00.000Z",
        "dateUpdated": "2024-08-06T09:20:19.883Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-4690 (GCVE-0-2013-4690)

    Vulnerability from nvd – Published: 2013-07-11 14:00 – Updated: 2024-08-06 16:52
    VLAI
    Summary
    Juniper Junos 10.4 before 10.4S13, 11.4 before 11.4R7-S1, 12.1 before 12.1R5-S3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on the SRX1400, SRX3400, and SRX3600 does not properly initialize memory locations used during padding of Ethernet packets, which allows remote attackers to obtain sensitive information by reading packet data, aka PR 829536, a related issue to CVE-2003-0001.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/61123 vdb-entryx_refsource_BID
    http://osvdb.org/95112 vdb-entryx_refsource_OSVDB
    http://kb.juniper.net/JSA10579 x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2013-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:52:26.654Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "61123",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/61123"
              },
              {
                "name": "95112",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/95112"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/JSA10579"
              },
              {
                "name": "junos-cve20134690-info-disc(85627)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85627"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 10.4 before 10.4S13, 11.4 before 11.4R7-S1, 12.1 before 12.1R5-S3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on the SRX1400, SRX3400, and SRX3600 does not properly initialize memory locations used during padding of Ethernet packets, which allows remote attackers to obtain sensitive information by reading packet data, aka PR 829536, a related issue to CVE-2003-0001."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "61123",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/61123"
            },
            {
              "name": "95112",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/95112"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://kb.juniper.net/JSA10579"
            },
            {
              "name": "junos-cve20134690-info-disc(85627)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85627"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-4690",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 10.4 before 10.4S13, 11.4 before 11.4R7-S1, 12.1 before 12.1R5-S3, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on the SRX1400, SRX3400, and SRX3600 does not properly initialize memory locations used during padding of Ethernet packets, which allows remote attackers to obtain sensitive information by reading packet data, aka PR 829536, a related issue to CVE-2003-0001."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "61123",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/61123"
                },
                {
                  "name": "95112",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/95112"
                },
                {
                  "name": "http://kb.juniper.net/JSA10579",
                  "refsource": "CONFIRM",
                  "url": "http://kb.juniper.net/JSA10579"
                },
                {
                  "name": "junos-cve20134690-info-disc(85627)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85627"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-4690",
        "datePublished": "2013-07-11T14:00:00.000Z",
        "dateReserved": "2013-06-26T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:52:26.654Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2013-4688 (GCVE-0-2013-4688)

    Vulnerability from nvd – Published: 2013-07-11 14:00 – Updated: 2024-08-06 16:52
    VLAI
    Summary
    flowd in Juniper Junos 10.4 before 10.4R11 on SRX devices, when the MSRPC Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted MSRPC requests, aka PR 772834.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/61124 vdb-entryx_refsource_BID
    http://kb.juniper.net/JSA10578 x_refsource_CONFIRM
    Date Public
    2013-07-10 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T16:52:26.922Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "61124",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/61124"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/JSA10578"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2013-07-10T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "flowd in Juniper Junos 10.4 before 10.4R11 on SRX devices, when the MSRPC Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted MSRPC requests, aka PR 772834."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2013-08-22T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "61124",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/61124"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://kb.juniper.net/JSA10578"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2013-4688",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "flowd in Juniper Junos 10.4 before 10.4R11 on SRX devices, when the MSRPC Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted MSRPC requests, aka PR 772834."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "61124",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/61124"
                },
                {
                  "name": "http://kb.juniper.net/JSA10578",
                  "refsource": "CONFIRM",
                  "url": "http://kb.juniper.net/JSA10578"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2013-4688",
        "datePublished": "2013-07-11T14:00:00.000Z",
        "dateReserved": "2013-06-26T00:00:00.000Z",
        "dateUpdated": "2024-08-06T16:52:26.922Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3825 (GCVE-0-2014-3825)

    Vulnerability from cvelistv5 – Published: 2014-10-14 14:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    http://www.securitytracker.com/id/1031007 vdb-entryx_refsource_SECTRACK
    Date Public
    2014-10-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.053Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
              },
              {
                "name": "1031007",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1031007"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-10-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-10-27T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
            },
            {
              "name": "1031007",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1031007"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3825",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10650"
                },
                {
                  "name": "1031007",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1031007"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3825",
        "datePublished": "2014-10-14T14:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.053Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3817 (GCVE-0-2014-3817)

    Vulnerability from cvelistv5 – Published: 2014-07-11 20:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/68545 vdb-entryx_refsource_BID
    http://secunia.com/advisories/59136 third-party-advisoryx_refsource_SECUNIA
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    http://www.securitytracker.com/id/1030558 vdb-entryx_refsource_SECTRACK
    Date Public
    2014-07-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.363Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "68545",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/68545"
              },
              {
                "name": "59136",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/59136"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
              },
              {
                "name": "1030558",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030558"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-07-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-25T19:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "68545",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/68545"
            },
            {
              "name": "59136",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/59136"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
            },
            {
              "name": "1030558",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030558"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3817",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "68545",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/68545"
                },
                {
                  "name": "59136",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/59136"
                },
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10635"
                },
                {
                  "name": "1030558",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030558"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3817",
        "datePublished": "2014-07-11T20:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.363Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3822 (GCVE-0-2014-3822)

    Vulnerability from cvelistv5 – Published: 2014-07-11 20:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securitytracker.com/id/1030560 vdb-entryx_refsource_SECTRACK
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    Date Public
    2014-07-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.621Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1030560",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030560"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-07-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-15T11:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1030560",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030560"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3822",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 11.4 before 11.4R8, 12.1 before 12.1R5, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.1X46 before 12.1X46-D10, and 12.1X47 before 12.1X47-D10 on SRX Series devices, allows remote attackers to cause a denial of service (flowd crash) via a malformed packet, related to translating IPv6 to IPv4."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1030560",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030560"
                },
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10641"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3822",
        "datePublished": "2014-07-11T20:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.621Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-3815 (GCVE-0-2014-3815)

    Vulnerability from cvelistv5 – Published: 2014-07-11 20:00 – Updated: 2024-08-06 10:57
    VLAI
    Summary
    Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/68551 vdb-entryx_refsource_BID
    http://www.securitytracker.com/id/1030557 vdb-entryx_refsource_SECTRACK
    Date Public
    2014-07-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T10:57:17.296Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
              },
              {
                "name": "68551",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/68551"
              },
              {
                "name": "1030557",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1030557"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-07-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-07-21T13:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
            },
            {
              "name": "68551",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/68551"
            },
            {
              "name": "1030557",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1030557"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-3815",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10633"
                },
                {
                  "name": "68551",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/68551"
                },
                {
                  "name": "1030557",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1030557"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-3815",
        "datePublished": "2014-07-11T20:00:00.000Z",
        "dateReserved": "2014-05-21T00:00:00.000Z",
        "dateUpdated": "2024-08-06T10:57:17.296Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-0617 (GCVE-0-2014-0617)

    Vulnerability from cvelistv5 – Published: 2014-01-14 18:00 – Updated: 2024-08-06 09:20
    VLAI
    Summary
    Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securitytracker.com/id/1029583 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/64764 vdb-entryx_refsource_BID
    http://osvdb.org/101863 vdb-entryx_refsource_OSVDB
    http://kb.juniper.net/InfoCenter/index?page=conte… x_refsource_CONFIRM
    Date Public
    2014-01-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T09:20:19.825Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1029583",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1029583"
              },
              {
                "name": "64764",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/64764"
              },
              {
                "name": "101863",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/101863"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-01-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-01-14T17:57:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1029583",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1029583"
            },
            {
              "name": "64764",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/64764"
            },
            {
              "name": "101863",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/101863"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-0617",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1029583",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1029583"
                },
                {
                  "name": "64764",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/64764"
                },
                {
                  "name": "101863",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/101863"
                },
                {
                  "name": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610",
                  "refsource": "CONFIRM",
                  "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10610"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-0617",
        "datePublished": "2014-01-14T18:00:00.000Z",
        "dateReserved": "2013-12-31T00:00:00.000Z",
        "dateUpdated": "2024-08-06T09:20:19.825Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-0618 (GCVE-0-2014-0618)

    Vulnerability from cvelistv5 – Published: 2014-01-11 02:00 – Updated: 2024-08-06 09:20
    VLAI
    Summary
    Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securitytracker.com/id/1029584 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/64769 vdb-entryx_refsource_BID
    http://osvdb.org/101864 vdb-entryx_refsource_OSVDB
    https://kb.juniper.net/InfoCenter/index?page=cont… x_refsource_CONFIRM
    Date Public
    2014-01-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T09:20:19.883Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "juniper-junos-srx-cve20140618-dos(90238)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
              },
              {
                "name": "1029584",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1029584"
              },
              {
                "name": "64769",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/64769"
              },
              {
                "name": "101864",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/101864"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-01-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-08-28T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "juniper-junos-srx-cve20140618-dos(90238)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
            },
            {
              "name": "1029584",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1029584"
            },
            {
              "name": "64769",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/64769"
            },
            {
              "name": "101864",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/101864"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-0618",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "juniper-junos-srx-cve20140618-dos(90238)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90238"
                },
                {
                  "name": "1029584",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1029584"
                },
                {
                  "name": "64769",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/64769"
                },
                {
                  "name": "101864",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/101864"
                },
                {
                  "name": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10611"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-0618",
        "datePublished": "2014-01-11T02:00:00.000Z",
        "dateReserved": "2013-12-31T00:00:00.000Z",
        "dateUpdated": "2024-08-06T09:20:19.883Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }